The vulnerability of the Tool for Auto-Registered Phones Support (TAPS) in Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) systems allows a malicious individual to gain unauthorized access to protected information.

The vulnerability of the Tool for Auto-Registered Phones Support TAPS module in Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition SME systems is related to an incorrect limitation on the path to the restricted-access directory. Exploiting thi...